{"id":7675,"date":"2024-06-17T15:51:00","date_gmt":"2024-06-17T13:51:00","guid":{"rendered":"https:\/\/logmanager.com\/?post_type=learning_hub&#038;p=7675"},"modified":"2026-06-24T16:14:42","modified_gmt":"2026-06-24T14:14:42","slug":"log-management-siem-zokb","status":"publish","type":"learning_hub","link":"https:\/\/logmanager.com\/cs\/learn\/log-management-siem-zokb\/","title":{"rendered":"Log management, SIEM a nov\u00fd ZoKB"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\">Nov\u00fd z\u00e1kon o kybernetick\u00e9 bezpe\u010dnosti (ZokB) transponuje do \u010desk\u00e9 legislativy po\u017eadavky evropsk\u00e9 sm\u011brnice NIS2. Od regulovan\u00fdch subjekt\u016f vy\u017eaduje zaveden\u00ed \u0159ady technick\u00fdch a organiza\u010dn\u00edch opat\u0159en\u00ed, mimo jin\u00e9 ukl\u00e1d\u00e1 povinnost logovat a vyhodnocovat bezpe\u010dnostn\u00ed ud\u00e1losti. \u0158e\u0161en\u00ed pro spr\u00e1vu log\u016f (log management) a SIEM tak hraj\u00ed pro napln\u011bn\u00ed souladu s nov\u00fdm kybernetick\u00fdm z\u00e1konem d\u016fle\u017eitou roli.<\/p>\n\n\n\n\n<div class=\"flex items-start gap-4 lg:gap-6 bg-white rounded-2xl lg:rounded-24 p-6 pr-8 lg:p-8 lg:pr-10 my-6 lg:my-10\">\n            <div class=\"shrink-0 size-7\">\n            <svg class=\"size-7 text-blue\">\n                <use xlink:href=\"https:\/\/logmanager.com\/wp-content\/themes\/logmanager\/public\/build\/assets\/spritemap.eb9d01ba.svg#summary\"><\/use>\n            <\/svg>\n        <\/div>\n    \n    <div class=\"infobox-content leading-normal\"><p><!-- wp:paragraph --><\/p>\n<p><strong>TL;DR<\/strong><\/p>\n<p>Nov\u00fd \u010desk\u00fd z\u00e1kon o kybernetick\u00e9 bezpe\u010dnosti (2025), vych\u00e1z\u00ed z evropsk\u00e9 sm\u011brnice NIS2. P\u0159esto\u017ee dan\u00e9 technologie explicitn\u011b nezmi\u0148uje, z log managementu a SIEMu \u010din\u00ed prakticky nezbytn\u00e9 n\u00e1stroje pro spln\u011bn\u00ed jeho po\u017eadavk\u016f, a to zejm\u00e9na pro organizace v re\u017eimu vy\u0161\u0161\u00edch povinnost\u00ed.<\/p>\n<p><!-- \/wp:paragraph --> <!-- wp:paragraph --><\/p>\n<p>Ve vztahu k log managementu a SIEM jsou nejd\u016fle\u017eit\u011bj\u0161\u00ed paragrafy \u00a7 22 a \u00a7 23 prov\u00e1d\u011bn\u00ed vyhl\u00e1\u0161ky o bezpe\u010dnostn\u00edch opat\u0159en\u00edch poskytovatele regulovan\u00e9 slu\u017eby v re\u017eimu vy\u0161\u0161\u00edch povinnost\u00ed.<\/p>\n<ul>\n<li><strong>\u00a7 22 (zaznamen\u00e1v\u00e1n\u00ed ud\u00e1lost\u00ed \u2192 log management)<\/strong> \u0159\u00edk\u00e1, \u017ee povinn\u00e1 organizace mus\u00ed ur\u010dit syst\u00e9my, kter\u00e9 budou zaznamen\u00e1vat bezpe\u010dnostn\u00ed a relevantn\u00edch provozn\u00ed ud\u00e1lost\u00ed, a nav\u00edc, \u017ee tyto z\u00e1znamy (logy) mus\u00ed systematicky sb\u00edrat, uchov\u00e1vat a chr\u00e1nit. Jedn\u00e1 se typicky o logy o loginech, zm\u011bn\u00e1ch konfigurace, nebo privilegovan\u00fdch \u010dinnostech.<!-- \/wp:paragraph --> <!-- wp:paragraph --><\/li>\n<li><strong>\u00a7 23 (Vyhodnocov\u00e1n\u00ed kybernetick\u00fdch bezpe\u010dnostn\u00edch ud\u00e1lost\u00ed \u2192 SIEM)<\/strong> \u0159\u00edk\u00e1, \u017ee logy nesta\u010d\u00ed jen sb\u00edrat, ale je t\u0159eba je s nimi i aktivn\u011b pracovat. Organizace ve vy\u0161\u0161\u00edm re\u017eimu mus\u00ed pr\u016fb\u011b\u017en\u011b vyhodnocovat kybernetick\u00e9 bezpe\u010dnostn\u00ed ud\u00e1losti a mus\u00ed m\u00edt n\u00e1stroj nejen pro sb\u011br log\u016f, ale i jejich korelaci a alerting.<\/li>\n<\/ul>\n<p><!-- \/wp:paragraph --><\/p>\n<\/div>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\"><br><\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Co vy\u017eaduje sm\u011brnice NIS2?<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Sm\u011brnice NIS2 (<a href=\"https:\/\/eur-lex.europa.eu\/eli\/dir\/2022\/2555\" target=\"_blank\" rel=\"noopener\">The Network and Information Security Directive<\/a>) je evropsk\u00e1 legislativa, kter\u00e1 stanovuje po\u017eadavky pro zaji\u0161t\u011bn\u00ed kybernetick\u00e9 bezpe\u010dnosti informa\u010dn\u00edch syst\u00e9m\u016f a s\u00edt\u00ed v \u010dlensk\u00fdch st\u00e1tech Evropsk\u00e9 unie. Jedn\u00e1 se o aktualizaci p\u016fvodn\u00ed sm\u011brnice NIS, kter\u00e1 byla p\u0159ijata v roce 2016.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Nejedn\u00e1 se p\u0159itom o kosmetickou aktualizaci, NIS2 p\u016fvodn\u00ed sm\u011brnici v\u00fdznamn\u011b roz\u0161i\u0159uje s c\u00edlem je\u0161t\u011b v\u00edce pos\u00edlit odolnost slu\u017eeb kritick\u00fdch pro spole\u010dnost.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Jedn\u00e1 se o pom\u011brn\u011b rozs\u00e1hlou a slo\u017eitou \u00fapravu, kter\u00e1 obecn\u011b sleduje n\u011bkolik hlavn\u00edch c\u00edl\u016f:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Zp\u0159\u00edsn\u011bn\u00ed po\u017eadavk\u016f<\/strong> \u2013 Sm\u011brnice NIS2 zav\u00e1d\u00ed \u0159adu technick\u00fdch a organiza\u010dn\u00edch po\u017eadavk\u016f, kter\u00e9 budou muset povinn\u00e9 subjekty zav\u00e9st. Pat\u0159\u00ed mezi n\u011b zabezpe\u010den\u00ed dodavatelsk\u00e9ho \u0159et\u011bzce, zaji\u0161t\u011bn\u00ed kontinuity podnik\u00e1n\u00ed, krizov\u00fd management, \u0161kolen\u00ed v oblasti kybernetick\u00e9 bezpe\u010dnosti, nasazen\u00ed politik \u0159\u00edzen\u00ed p\u0159\u00edstupu, a dal\u0161\u00ed.<\/li>\n\n\n\n<li><strong>Roz\u0161\u00ed\u0159en\u00e1 p\u016fsobnost<\/strong> \u2013 Sm\u011brnice NIS2 v\u00fdrazn\u011b zvy\u0161uje po\u010det povinn\u00fdch subjekt\u016f a regulovan\u00fdch sektor\u016f. V \u010cesk\u00e9 \u00faprav\u011b, nov\u00e9m z\u00e1konu o kybernetick\u00e9 bezpe\u010dnosti pokr\u00fdv\u00e1 celkem 15 odv\u011btv\u00ed. Uvedeny jsou ve <a href=\"https:\/\/www.e-sbirka.cz\/sb\/2025\/408\/0000-00-00?zalozka=text\" target=\"_blank\" rel=\"noopener\">vyhl\u00e1\u0161ce o regulovan\u00fdch slu\u017eb\u00e1ch<\/a>.<\/li>\n\n\n\n<li><strong>Komplexn\u011bj\u0161\u00ed syst\u00e9m sankc\u00ed<\/strong> \u2013 NIS2 zvy\u0161uje horn\u00ed hranice finan\u010dn\u00edch pokut a zav\u00e1d\u00ed tak\u00e9 nefinan\u010dn\u00ed sankce p\u0159i nedodr\u017eov\u00e1n\u00ed povinnost\u00ed. Jedn\u00e1 se nap\u0159\u00edklad o pozastaven\u00ed v\u00fdkonu \u0159\u00edd\u00edc\u00ed funkce statut\u00e1rn\u00edmu org\u00e1nu nebo odebr\u00e1n\u00ed kyberbezpe\u010dnostn\u00edch certifikac\u00ed.<\/li>\n\n\n\n<li><strong>Pos\u00edlen\u00ed dohledu <\/strong>\u2013 Povinn\u00e9 subjekty budou podl\u00e9hat roz\u0161\u00ed\u0159en\u00e9 povinnosti hl\u00e1\u0161en\u00ed incident\u016f a povinnosti prov\u00e1d\u011bt pravideln\u00e9 audity kybernetick\u00e9 bezpe\u010dnosti.<\/li>\n\n\n\n<li><strong>Lep\u0161\u00ed spolupr\u00e1ce nap\u0159\u00ed\u010d EU<\/strong> \u2013 Sm\u011brnice NIS2 je z\u00e1kladem pro vznik Evropsk\u00e9 organizace pro \u0159e\u0161en\u00ed kybernetick\u00fdch kriz\u00ed (EU-CyCLONe). Ta m\u00e1 slou\u017eit jako centr\u00e1ln\u00ed bod pro koordinaci proti velkoplo\u0161n\u00fdm kybernetick\u00fdm \u00fatok\u016fm a pro sd\u00edlen\u00ed zku\u0161enost\u00ed.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Nov\u00fd z\u00e1kon o kybernetick\u00e9 bezpe\u010dnosti<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Nov\u00fd z\u00e1kon o kybernetick\u00e9 bezpe\u010dnosti (ZoKB) vstoupil v platnost 1. listopadu 2025. Jeho podoba vych\u00e1z\u00ed z ji\u017e zm\u00edn\u011bn\u00e9 sm\u011brnice NIS2, kter\u00e1 d\u00e1v\u00e1 jasn\u00e9 pokyny ohledn\u011b technick\u00fdch a organiza\u010dn\u00edch po\u017eadavk\u016f.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">V z\u00e1kladu definuje dva re\u017eimy povinnost\u00ed pro regulovan\u00e9 subjekty, ni\u017e\u0161\u00ed a vy\u0161\u0161\u00ed. Krit\u00e9riem pro rozd\u011blen\u00ed do vy\u0161\u0161\u00edho a ni\u017e\u0161\u00edho re\u017eimu je krom\u011b p\u0159\u00edslu\u0161nosti k regulovan\u00e9mu odv\u011btv\u00ed p\u0159edev\u0161\u00edm velikost podniku, u vybran\u00fdch slu\u017eeb se ale posuzuj\u00ed i dal\u0161\u00ed faktory.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Detailn\u011bj\u0161\u00ed rozbor obou re\u017eim\u016f nen\u00ed podstatou tohoto \u010dl\u00e1nku, zopakujme tedy alespo\u0148 stru\u010dn\u011b jejich definice:<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Subjekty v \u0159e\u017eimu vy\u0161\u0161\u00edch povinnost\u00ed<\/strong><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Sem spadaj\u00ed organizace uveden\u00e9 v p\u0159\u00edloze vyhl\u00e1\u0161ky o regulovan\u00fdch slu\u017eb\u00e1ch. Jedn\u00e1 se nap\u0159\u00edklad o subjekty z energetick\u00e9ho pr\u016fmyslu, dopravy, bankovnictv\u00ed, ve\u0159ejn\u00e9 spr\u00e1vy, poskytovatel\u00e9 ICT slu\u017eeb a dal\u0161\u00ed. Technick\u00e1 a organiza\u010dn\u00ed opat\u0159en\u00ed pro re\u017eim vy\u0161\u0161\u00edch povinnost\u00ed jsou definov\u00e1ny <a href=\"https:\/\/www.e-sbirka.cz\/sb\/2025\/409\/0000-00-00?zalozka=text\" data-type=\"link\" data-id=\"https:\/\/www.e-sbirka.cz\/sb\/2025\/409\/0000-00-00?zalozka=text\" target=\"_blank\" rel=\"noopener\">vyhl\u00e1\u0161kou \u010d. 409\/2025 Sb<\/a>.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Subjekty v re\u017eimu ni\u017e\u0161\u00edch povinnost\u00ed<\/strong><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Sem spadaj\u00ed zpravidla st\u0159edn\u00ed a velk\u00e9 firmy z obor\u016f jako po\u0161tovn\u00ed a kur\u00fdrn\u00ed slu\u017eby, potravin\u00e1\u0159stv\u00ed, chemick\u00fd pr\u016fmysl a dal\u0161\u00ed uveden\u00e9 ve vyhl\u00e1\u0161ce o regulovan\u00fdch slu\u017eb\u00e1h. Tyto budou regulov\u00e1ny v re\u017eimu ni\u017e\u0161\u00edch povinnost\u00ed, kter\u00e9 upravuje <a href=\"https:\/\/www.e-sbirka.cz\/sb\/2025\/410\/0000-00-00?zalozka=text\" target=\"_blank\" rel=\"noopener\">vyhl\u00e1\u0161ka \u010d. 410\/2025 Sb<\/a>.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Napl\u0148ov\u00e1n\u00ed technick\u00fdch opat\u0159en\u00ed ZoKB<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Implementace technick\u00fdch opat\u0159en\u00ed podle nov\u00e9ho z\u00e1kona o kybernetick\u00e9 bezpe\u010dnosti (ZoKB) je kl\u00ed\u010dov\u00e1 pro zaji\u0161t\u011bn\u00ed ochrany kritick\u00fdch informa\u010dn\u00edch syst\u00e9m\u016f a s\u00edt\u00ed.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Sou\u010d\u00e1st\u00ed zaveden\u00ed technick\u00fdch opat\u0159en\u00ed je i oblast detekce a reakce na incidenty, \u0161ifrov\u00e1n\u00ed citliv\u00fdch dat, \u0159\u00edzen\u00ed p\u0159\u00edstupov\u00fdch pr\u00e1v, pravideln\u00e9 aktualizace a z\u00e1lohov\u00e1n\u00ed syst\u00e9m\u016f, atd. Nov\u00fd z\u00e1kon tak\u00e9 klade d\u016fraz na prov\u00e1d\u011bn\u00ed pravideln\u00fdch bezpe\u010dnostn\u00edch audit\u016f, \u0161kolen\u00ed a testov\u00e1n\u00ed odolnosti proti kybernetick\u00fdm \u00fatok\u016fm.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Konkr\u00e9tn\u00ed povinnosti definuj\u00ed dv\u011b samostatn\u00e9 prov\u00e1d\u011bc\u00ed vyhl\u00e1\u0161ky (pro re\u017eimy vy\u0161\u0161\u00edch a ni\u017e\u0161\u00edch povinnost\u00ed). Ty poskytuj\u00ed jasn\u00e9 pokyny pro implementaci technick\u00fdch opat\u0159en\u00ed, p\u0159i\u010dem\u017e pro subjekty spadaj\u00edc\u00ed do re\u017eimu vy\u0161\u0161\u00edch povinnost\u00ed pokr\u00fdvaj\u00ed n\u00e1sleduj\u00edc\u00ed oblasti:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Fyzick\u00e1 bezpe\u010dnost<\/li>\n\n\n\n<li>Bezpe\u010dnost komunika\u010dn\u00edch s\u00edt\u00ed<\/li>\n\n\n\n<li>Spr\u00e1va a ov\u011b\u0159ov\u00e1n\u00ed identit<\/li>\n\n\n\n<li>\u0158\u00edzen\u00ed p\u0159\u00edstupov\u00fdch opr\u00e1vn\u011bn\u00ed<\/li>\n\n\n\n<li>Detekce kybernetick\u00fdch bezpe\u010dnostn\u00edch ud\u00e1lost\u00ed<\/li>\n\n\n\n<li>Zaznamen\u00e1v\u00e1n\u00ed bezpe\u010dnostn\u00edch a relevantn\u00edch provozn\u00edch ud\u00e1lost\u00ed<\/li>\n\n\n\n<li>Vyhodnocov\u00e1n\u00ed kybernetick\u00fdch bezpe\u010dnostn\u00edch ud\u00e1lost\u00ed<\/li>\n\n\n\n<li>Aplika\u010dn\u00ed bezpe\u010dnost<\/li>\n\n\n\n<li>Kryptografick\u00e9 algoritmy<\/li>\n\n\n\n<li>Zaji\u0161\u0165ov\u00e1n\u00ed dostupnosti regulovan\u00e9 slu\u017eby<\/li>\n\n\n\n<li>Zabezpe\u010den\u00ed pr\u016fmyslov\u00fdch, \u0159\u00eddic\u00edch a obd. spec. technick\u00fdch aktiv<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">V n\u00e1sleduj\u00edc\u00edm textu se podrobn\u011bji pod\u00edv\u00e1me na oblast zaznamen\u00e1v\u00e1n\u00ed bezpe\u010dnostn\u00edch a relevantn\u00edch provozn\u00edch ud\u00e1lost\u00ed a jejich vyhodnocov\u00e1n\u00ed, tedy konkr\u00e9tn\u011b na paragrafy \u00a7 22 a \u00a7 23 <a href=\"https:\/\/www.e-sbirka.cz\/sb\/2025\/409\/0000-00-00?zalozka=text\" target=\"_blank\" rel=\"noopener\">vyhl\u00e1\u0161ky<\/a> o bezpe\u010dnostn\u00edch opat\u0159en\u00edch poskytovatele regulovan\u00e9 slu\u017eby v re\u017eimu vy\u0161\u0161\u00edch povinnost\u00ed.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Role log managementu v nov\u00e9m z\u00e1konu o kybernetick\u00e9 bezpe\u010dnosti \u2013 \u00a7 22<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><a href=\"https:\/\/logmanager.com\/cs\/blog\/log-management\/log-management-best-practices\/\">Log management<\/a>, neboli spr\u00e1va log\u016f, hraje v r\u00e1mci po\u017eadavk\u016f nov\u00e9ho kybernetick\u00e9ho z\u00e1kona kl\u00ed\u010dovou roli, proto\u017ee informace v nich obsa\u017een\u00e9 jsou z\u00e1kladn\u00edm n\u00e1strojem pro sledov\u00e1n\u00ed a anal\u00fdzu aktivity v informa\u010dn\u00edch syst\u00e9mech. Poskytuj\u00ed informace o jejich p\u016fvodu, pr\u016fb\u011bhu a mo\u017en\u00fdch dopadech.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">\u00a7 22 v podstat\u011b \u0159\u00edk\u00e1, \u017ee by organizace m\u011bla ur\u010dit, z jak\u00fdch technick\u00fdch aktiv (syst\u00e9m\u016f) bude <a href=\"https:\/\/logmanager.com\/cs\/blog\/log-management\/jak-na-logovani-typy-logu-zdroje-co-logovat\/\">logy<\/a> sb\u00edrat, \u010dinit tak systematicky, uchov\u00e1vat je a m\u00edt nad nimi odpov\u00eddaj\u00edc\u00ed kontrolu. Typicky se bude jednat o servery, s\u00ed\u0165ov\u00e9 prvky, bezpe\u010dnostn\u00ed a jin\u00e9 syst\u00e9my, kter\u00e9 souvis\u00ed s provozem regulovan\u00e9 slu\u017eby.<br><br>Logov\u00e1ny by m\u011bly b\u00fdt jak b\u011b\u017en\u00fdch provozn\u00ed ud\u00e1losti (nap\u0159. zah\u00e1jen\u00ed a ukon\u010den\u00ed \u010dinnosti aktiva), tak i ud\u00e1losti p\u0159\u00edmo souvisej\u00edc\u00ed s jejich bezpe\u010dnost\u00ed. Sem spadaj\u00ed z\u00e1znamy o p\u0159ihla\u0161ov\u00e1n\u00ed a odhla\u0161ov\u00e1n\u00ed u\u017eivatel\u016f, zm\u011bny nastaven\u00ed a ne\u00fasp\u011b\u0161n\u00e9 pokusy o jejich proveden\u00ed, ne\u00fasp\u011b\u0161n\u00e9 pokusy o v\u00fdkon privilegovan\u00fdch \u010dinnost\u00ed a \u0159ada dal\u0161\u00edch (viz \u00a7 22 odst. 3).<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Vyhl\u00e1\u0161ka z\u00e1rove\u0148 definuje i minim\u00e1ln\u00ed rozsah informac\u00ed, kter\u00e9 mus\u00ed ka\u017ed\u00fd z\u00e1znam obsahovat:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>datum a \u010das v\u010detn\u011b specifikace \u010dasov\u00e9ho p\u00e1sma, typ \u010dinnosti,<\/li>\n\n\n\n<li>identifikaci technick\u00e9ho aktiva, kter\u00e9 \u010dinnost zaznamenalo,<\/li>\n\n\n\n<li>identifikaci \u00fa\u010dtu, pod kter\u00fdm byla \u010dinnost provedena,<\/li>\n\n\n\n<li>jednozna\u010dnou identifikaci za\u0159\u00edzen\u00ed p\u016fvodce<\/li>\n\n\n\n<li>\u00fasp\u011b\u0161nost nebo ne\u00fasp\u011b\u0161nost \u010dinnosti.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">Pro organizace spadaj\u00edc\u00ed do vy\u0161\u0161\u00edho re\u017eimu povinnost\u00ed nav\u00edc plat\u00ed, \u017ee mus\u00ed s logy pracovat centralizovan\u011b, tedy prost\u0159ednictv\u00edm n\u00e1stroje pro log management nebo p\u0159\u00edmo pomoc\u00ed SIEM \u0159e\u0161en\u00ed, kter\u00e9 obsahuje funkce pro agregaci a spr\u00e1vu log\u016f<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Role SIEM v nov\u00e9m z\u00e1konu o kybernetick\u00e9 bezpe\u010dnosti \u2013 \u00a7 23<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Nov\u00fd kybernetick\u00fd z\u00e1kon v \u00a7 23 vyhl\u00e1\u0161ky po\u017eaduje po subjektech ve vy\u0161\u0161\u00edm re\u017eimu, aby m\u011bly n\u00e1stroje pro nep\u0159etr\u017eit\u00e9 vyhodnocov\u00e1n\u00ed detekovan\u00fdch kybernetick\u00fdch bezpe\u010dnostn\u00edch ud\u00e1lost\u00ed. C\u00edlem tohoto paragrafu z\u00e1kona ja, aby povinn\u00e9 subjekty proaktivn\u011b reagovaly na hrozby a z\u00e1rove\u0148 zvy\u0161ovaly svoji odolnost prost\u0159ednictv\u00edm identifikace a odstra\u0148ov\u00e1n\u00ed bezpe\u010dnostn\u00edch slabin.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">V praxi to znamen\u00e1, \u017ee p\u0159\u00edslu\u0161n\u00fd n\u00e1stroj mus\u00ed b\u00fdt schopen logov\u00e1 data systematicky shroma\u017e\u010fovat, strukturovat, agregovat a vz\u00e1jemn\u011b korelovat. A to s c\u00edlem v\u010dasn\u00e9ho odhalen\u00ed anom\u00e1li\u00ed, hrozeb a sou\u010dasn\u011b zaji\u0161t\u011bn\u00ed, \u017ee na n\u011b budou v\u010das upozorn\u011bny odpov\u011bdn\u00e9 osoby v souladu s \u00a7 23 odst. 1 p\u00edsm. b). Jedn\u00e1 se o opat\u0159en\u00ed, kter\u00e9 jednak sm\u011b\u0159uje k proaktivn\u00ed reakci na na nov\u011b se objevuj\u00edc\u00ed hrozby, druhak k neust\u00e1l\u00e9 optimalizaci odolnosti organizace prost\u0159ednictv\u00edm odhalov\u00e1n\u00ed a odstra\u0148ov\u00e1n\u00ed jej\u00edch bezpe\u010dnostn\u00edch slabin.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">A pr\u00e1v\u011b to jsou funkce SIEM syst\u00e9m\u016f, kter\u00e9 um\u00ed sb\u00edrat a korelovat ud\u00e1losti z r\u016fzn\u00fdch zdroj\u016f a na z\u00e1klad\u011b p\u0159edem definovan\u00fdch pravidel automaticky upozor\u0148ovat bezpe\u010dnostn\u00ed t\u00fdm na podez\u0159el\u00e9 chov\u00e1n\u00ed.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">A\u010dkoliv existuj\u00ed i alternativn\u00ed p\u0159\u00edstupy, nap\u0159\u00edklad vyu\u017eit\u00ed slu\u017eeb typu SOC, ty jsou zpravidla spojeny s ur\u010dit\u00fdmi kompromisy. Pro regulovan\u00e9 organizace tak p\u0159edstavuje SIEM \u0159e\u0161en\u00ed nejp\u0159\u00edm\u011bj\u0161\u00ed a z\u00e1rove\u0148 nejkomplexn\u011bj\u0161\u00ed zp\u016fsob, jak po\u017eadavky \u00a7 23 vyhl\u00e1\u0161ky naplnit.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Pokryjte po\u017eadavky z\u00e1kony o kybernetick\u00e9 bezpe\u010dnosti s Logmanagerem<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Zaznamen\u00e1v\u00e1n\u00ed, anal\u00fdza a vyhodnocov\u00e1n\u00ed kybernetick\u00fdch ud\u00e1lost\u00ed jsou st\u011b\u017eejn\u00ed sou\u010d\u00e1st\u00ed jak\u00e9koliv \u00fasp\u011b\u0161n\u00e9 obrany proti \u00fatok\u016fm a hrozb\u00e1m. Proto jsou i jedn\u00edm ze z\u00e1klad\u016f nov\u00e9ho z\u00e1kona o kybernetick\u00e9 bezpe\u010dnosti.&nbsp;<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">N\u00e1stroje pro spr\u00e1vu log\u016f a SIEM tak budou pro soulad (<a href=\"https:\/\/logmanager.com\/cs\/?p=3680\" data-type=\"link\" data-id=\"https:\/\/logmanager.com\/cs\/blog\/it-compliance\/it-compliance\/\">compliance<\/a>) s touto legislativou st\u011b\u017eejn\u00ed. Umo\u017e\u0148uj\u00ed tuto oblast pokr\u00fdt, a to v\u010detn\u011b povinnosti bezpe\u010dn\u00e9ho uchov\u00e1n\u00ed informac\u00ed o ud\u00e1lostech a jejich reportov\u00e1n\u00ed pro pot\u0159eby audit\u016f, kter\u00fdm mohou b\u00fdt povinn\u00e9 subjekty podrobov\u00e1ny.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">\u0158e\u0161en\u00ed Logmanager umo\u017e\u0148uje tyto po\u017eadavky pokr\u00fdt prost\u0159ednictv\u00edm:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>centralizovan\u00e9ho sb\u011bru log\u016f z infrastruktury,&nbsp;<\/li>\n\n\n\n<li>n\u00e1stroj\u016f pro jejich rychl\u00e9 vyhled\u00e1v\u00e1n\u00ed, anal\u00fdzu a korelaci,<\/li>\n\n\n\n<li>a dlouhodob\u00e9ho ulo\u017een\u00ed pro auditn\u00ed a forenzn\u00ed \u00fa\u010dely v bezpe\u010dn\u00e9m \u00falo\u017ei\u0161ti.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">Jedn\u00e1 se o nejpou\u017e\u00edvan\u011bj\u0161\u00ed \u010desk\u00fd n\u00e1stroj pro spr\u00e1vu log\u016f s odleh\u010den\u00fdmi SIEM funkcemi, kter\u00e9mu d\u016fv\u011b\u0159uje p\u0159es 350 organizac\u00ed.<\/p>\n\n\n<div class=\"flex items-start gap-4 lg:gap-6 bg-white rounded-2xl lg:rounded-24 p-6 pr-8 lg:p-8 lg:pr-10 my-6 lg:my-10\">\n            <div class=\"shrink-0 size-7\">\n            <svg width=\"28\" height=\"28\" viewBox=\"0 0 28 28\" fill=\"none\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\">\n                <g clip-path=\"url(#clip0_2972_5339)\">\n                <path d=\"M14.0025 28.0049C21.7358 28.0049 28.0049 21.7358 28.0049 14.0025C28.0049 6.26912 21.7358 0 14.0025 0C6.26912 0 0 6.26912 0 14.0025C0 21.7358 6.26912 28.0049 14.0025 28.0049Z\" fill=\"#00E24A\"\/>\n                <path d=\"M12.9659 20V11.2727H15.3864V20H12.9659ZM14.1818 10.1477C13.822 10.1477 13.5133 10.0284 13.2557 9.78977C13.0019 9.54735 12.875 9.25758 12.875 8.92045C12.875 8.58712 13.0019 8.30114 13.2557 8.0625C13.5133 7.82008 13.822 7.69886 14.1818 7.69886C14.5417 7.69886 14.8485 7.82008 15.1023 8.0625C15.3598 8.30114 15.4886 8.58712 15.4886 8.92045C15.4886 9.25758 15.3598 9.54735 15.1023 9.78977C14.8485 10.0284 14.5417 10.1477 14.1818 10.1477Z\" fill=\"white\"\/>\n                <\/g>\n                <defs>\n                <clipPath id=\"clip0_2972_5339\">\n                <rect width=\"28\" height=\"28.0049\" fill=\"white\"\/>\n                <\/clipPath>\n                <\/defs>\n            <\/svg>\n        <\/div>\n    \n    <div class=\"infobox-content leading-normal\"><p>Pokud chcete v\u011bd\u011bt, jak lze prakticky vyu\u017e\u00edt log management \u0159e\u0161en\u00ed pro pln\u011bn\u00ed povinnost\u00ed vypl\u00fdvaj\u00edc\u00edch ze z\u00e1kona o kybernetick\u00e9 bezpe\u010dnosti, p\u0159e\u010dt\u011bte si n\u00e1sleduj\u00edc\u00ed <a href=\"\/?resource_category=pripadova-studie-telco-pro-services\">p\u0159\u00edpadovou studii<\/a>.<\/p>\n<\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Zjist\u011bte, kter\u00e9 povinnosti nov\u00e9ho ZoKB umo\u017e\u0148uj\u00ed log management a SIEM pokr\u00fdt.<\/p>\n","protected":false},"author":4,"featured_media":7681,"parent":0,"template":"","learning_hub_tag":[],"class_list":["post-7675","learning_hub","type-learning_hub","status-publish","has-post-thumbnail","hentry"],"acf":[],"_links":{"self":[{"href":"https:\/\/logmanager.com\/cs\/wp-json\/wp\/v2\/learning_hub\/7675","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/logmanager.com\/cs\/wp-json\/wp\/v2\/learning_hub"}],"about":[{"href":"https:\/\/logmanager.com\/cs\/wp-json\/wp\/v2\/types\/learning_hub"}],"author":[{"embeddable":true,"href":"https:\/\/logmanager.com\/cs\/wp-json\/wp\/v2\/users\/4"}],"version-history":[{"count":3,"href":"https:\/\/logmanager.com\/cs\/wp-json\/wp\/v2\/learning_hub\/7675\/revisions"}],"predecessor-version":[{"id":7684,"href":"https:\/\/logmanager.com\/cs\/wp-json\/wp\/v2\/learning_hub\/7675\/revisions\/7684"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/logmanager.com\/cs\/wp-json\/wp\/v2\/media\/7681"}],"wp:attachment":[{"href":"https:\/\/logmanager.com\/cs\/wp-json\/wp\/v2\/media?parent=7675"}],"wp:term":[{"taxonomy":"learning_hub_tag","embeddable":true,"href":"https:\/\/logmanager.com\/cs\/wp-json\/wp\/v2\/learning_hub_tag?post=7675"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}